$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: HEg4ar1EP5d7AywTGTc8Nl3nR/FmAPLLxhT1oh5H4I8= Subject key identifier: 65:1A:FB:C7:70:4E:AF:58:4E:A9:43:C0:0E:C5:F1:53:2E:63:3E:CD Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 34E2 Signing time: Fri 30 May 2025 14:56:09 +0000 Manifest this update: Fri 30 May 2025 14:56:09 +0000 Manifest next update: Fri 06 Jun 2025 14:56:09 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: jhDgy7PFfpHzudwuDGVm92ToKKdYHP9DNqhEdbUS8ww=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13639 (0x3547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: May 30 14:56:09 2025 GMT Not After : Jun 6 14:56:09 2025 GMT Subject: CN=6839c709-1a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b6:fc:df:eb:20:5a:89:e7:21:de:ae:22:f7: d3:4d:0c:5d:ad:5a:9b:51:63:e6:50:45:34:b3:52: 7e:4d:c1:29:d5:5e:48:ee:62:37:5e:c7:61:06:76: 8b:bf:48:68:27:11:85:be:59:b7:a5:3b:87:f9:47: 8e:c4:a9:e6:c9:3f:a7:bb:0e:c2:8e:a6:fb:c9:b5: 1f:4d:ba:c1:fd:5e:c3:31:86:f0:2f:a0:28:07:4b: 75:a3:f1:d2:4a:34:82:51:4e:80:bd:4f:02:ef:4f: a4:7d:b0:b6:e5:4e:c2:8e:40:2b:2e:7e:22:23:b1: 68:98:9f:76:4e:9c:9f:1f:ef:57:de:49:4c:ad:c9: e9:2c:c0:ad:7f:28:50:0a:5a:e2:d7:44:fd:15:31: 0c:2c:22:a6:03:21:ad:dd:80:fb:53:2a:db:b9:b4: 0f:93:e9:69:35:f3:10:11:ea:61:e4:d6:6b:62:7b: f6:6a:c5:f2:3b:03:6a:53:25:d0:05:e7:9d:10:cd: 4b:9c:7d:1d:28:d8:ac:fd:a3:d4:11:c3:6f:16:97: 66:cd:87:b7:f3:e1:cf:85:b1:98:56:11:71:7f:53: ea:aa:e3:07:2e:84:1e:49:d8:79:6f:d5:68:48:55: 85:5f:e9:57:30:13:5a:80:43:ee:31:48:75:d8:9a: 33:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1A:FB:C7:70:4E:AF:58:4E:A9:43:C0:0E:C5:F1:53:2E:63:3E:CD X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:dc:9e:5f:54:4b:35:0d:71:42:95:1c:39:84:75:73:a7:27: 85:40:73:16:66:5c:58:b7:ac:06:ea:8e:48:a3:30:8a:ab:bd: a1:e4:59:e4:c2:f4:e8:ff:99:3d:6b:05:48:2d:38:62:03:28: d9:73:ef:15:b5:e5:85:51:90:be:6d:9d:dd:33:c9:4f:d5:60: 20:41:1f:fe:a0:eb:e5:14:9d:d8:64:5a:05:48:8a:2d:51:00: 8b:53:38:8a:64:5b:a6:f0:20:af:7d:1e:e9:c1:fe:93:4e:09: ba:51:5e:60:a9:bd:28:97:09:12:2d:18:dc:f2:fe:e1:70:ab: 52:72:ef:96:32:e4:b6:7f:d2:c8:28:eb:b5:58:57:9b:3a:75: 75:fb:01:c6:93:27:f5:2b:9c:4d:f9:d3:e5:e4:c9:13:ea:a9: d2:47:5e:84:ce:4e:75:88:3e:de:19:b7:b2:81:2b:77:6f:e3: d9:6c:36:dd:93:7d:51:00:63:9e:1a:03:9a:74:5d:89:99:26: 69:83:5a:f9:94:a2:5b:9e:22:22:ad:a2:9e:61:4b:dc:ac:2c: e7:34:bd:5d:09:9c:68:04:82:e9:c6:4b:73:d0:75:8e:0b:ba: 30:20:78:f3:3b:e0:2d:db:93:1f:87:53:b6:0a:48:50:a0:73: 78:76:50:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUwNTMwMTQ1NjA5WhcNMjUwNjA2MTQ1NjA5WjAYMRYwFAYD VQQDEw02ODM5YzcwOS0xYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrb83+sgWonnId6uIvfTTQxdrVqbUWPmUEU0s1J+TcEp1V5I7mI3XsdhBnaL v0hoJxGFvlm3pTuH+UeOxKnmyT+nuw7Cjqb7ybUfTbrB/V7DMYbwL6AoB0t1o/HS SjSCUU6AvU8C70+kfbC25U7CjkArLn4iI7FomJ92TpyfH+9X3klMrcnpLMCtfyhQ Clri10T9FTEMLCKmAyGt3YD7UyrbubQPk+lpNfMQEeph5NZrYnv2asXyOwNqUyXQ BeedEM1LnH0dKNis/aPUEcNvFpdmzYe38+HPhbGYVhFxf1PqquMHLoQeSdh5b9Vo SFWFX+lXMBNagEPuMUh12JozPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUa+8dw Tq9YTqlDwA7F8VMuYz7NMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe3J5fVEs1DXFClRw5hHVzpyeFQHMWZlxYt6wG6o5IozCKq72h5Fnk wvTo/5k9awVILThiAyjZc+8VteWFUZC+bZ3dM8lP1WAgQR/+oOvlFJ3YZFoFSIot UQCLUziKZFum8CCvfR7pwf6TTgm6UV5gqb0olwkSLRjc8v7hcKtScu+WMuS2f9LI KOu1WFebOnV1+wHGkyf1K5xN+dPl5MkT6qnSR16Ezk51iD7eGbeygSt3b+PZbDbd k31RAGOeGgOadF2JmSZpg1r5lKJbniIiraKeYUvcrCznNL1dCZxoBILpxktz0HWO C7owIHjzO+At25Mfh1O2CkhQoHN4dlDL -----END CERTIFICATE-----Generated at Sat May 31 16:39:51 2025 by rpki-client